teso-advisory-012.txt

teso-advisory-012.txt: Posted Feb 5, 2002; Authored by teso | Site team-teso.net; TESO Security Advisory - LIDS Linux Intrusion Detection System vulnerability. The "Linux Intrusion Detection System" security patch for the Linux kernel creates a security vulnerability. Exploitation is easy and local users may be able to gain unrestricted root privileges.; tags | kernel, local, root; systems | linux; SHA-256 | 8db59c973f0a09a893a58ab51abf452ad932286369e021ea1f5d4515063ef9d4; Download | Favorite | View

teso-advisory-012.txt

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


TESO Security Advisory
01/01/2002

LIDS Linux Intrusion Detection System vulnerability


Summary
===================

    The "Linux Intrusion Detection System" security patch for the Linux kernel
    creates a security vulnerability. Exploitation is easy and local users may
    be able to gain unrestricted root priviledges.


Systems Affected
===================

    Almost any Linux system that uses the LIDS kernel patch.


Impact
===================

    By obtaining the configuration of the LIDS system with a capability
    scanner an attacker may find out which capabilities are granted to
    which programs. He then may gather these capabilities such as
    CAP_SYS_ADMIN or CAP_SYS_RAWIO by tricking these programs to
    execute attackers code with these capabilities.
    The attacker is able to disable LIDS system completely. Further,
    any user (not just root) is able to exploit this weakness.


Explanation
===================

    Further information about the insecurities of LIDS may be obtained from
    [2].


Solution
===================

    The vendors have been informed. Fixes should be available soon.


Acknowledgements
===================

    The bug has been discovered by Stealth.

    The tests and further analysis were done by Stealth.


Contact Information
===================

    The TESO crew can be reached by mailing to teso@team-teso.net
    Our web page is at https://www.team-teso.net/


References
===================

    [1] TESO
        http://www.team-teso.net/

    [2] http://stealth.7350.org/lids-hack.tgz


Disclaimer
===================

    This advisory does not claim to be complete or to be usable for any
    purpose. Especially information on the vulnerable systems may be inaccurate
    or wrong. Possibly supplied exploit code is not to be used for malicious
    purposes, but for educational purposes only.

    This advisory is free for open distribution in unmodified form.
    Articles that are based on information from this advisory should include
    link [1].


Exploit
===================

    TESO does not provide exploits for this weakness.


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE8M3qLcZZ+BjKdwjcRAlssAKCB4W4wCRmv4t1WidJ3L761R38hlwCfSpL/
z2sieYPZ/K/LIyTBtyC+PS8=
=ofwZ
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 315 files
Ubuntu 65 files
Debian 25 files
LiquidWorm 11 files
Valentin Lobstein 10 files
nu11secur1ty 8 files
Google Security Research 6 files
Milad Karimi 6 files
Yevhenii Butenko 4 files
Jann Horn 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,024)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,473)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,698)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,477)
UNIX (9,394)
UnixWare (187)
Windows (6,653)
Other

teso-advisory-012.txt

teso-advisory-012.txt

File Archive:

May 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

teso-advisory-012.txt

Share This

teso-advisory-012.txt

File Archive:

May 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems